• If you are still using CentOS 7.9, it's time to convert to Alma 8 with the free centos2alma tool by Plesk or Plesk Migrator. Please let us know your experiences or concerns in this thread:
    CentOS2Alma discussion
  • Inviting everyone to the UX test of a new security feature in the WP Toolkit
    For WordPress site owners, threats posed by hackers are ever-present. Because of this, we are developing a new security feature for the WP Toolkit. If the topic of WordPress website security is relevant to you, we would be grateful if you could share your experience and help us test the usability of this feature. We invite you to join us for a 1-hour online session via Google Meet. Select a convenient meeting time with our friendly UX staff here.

Resolved How to set SSL to use TLSv1.2 through Let's Encrypt?

C

Cawe COy

New Pleskian
Hello I am a new Plesker :)

I am using Lets Encrypt to generate SSL certificate automatically each 3 month. The current SSL is using TLSv1.0 but I need it to use TLSv1.2.

Additional info:

Code: 
# plesk -v
Product version: 12.5.30 Update #76
    Update date: 2018/05/07 04:11
     Build date: 2016/06/08 10:00
     OS version: CentOS 5.11
       Revision: 344620
   Architecture: 64-bit
Wrapper version: 1.2

I am using Nginx as server.

Also, I've tried to enable only TLSv1.2 in my server, but it's failed:

Code: 
# /usr/local/psa/bin/server_pref -u -ssl-protocols "TLSv1.2"
[2018-09-25 10:05:15] ERR [util_exec] proc_close() failed ['/usr/local/psa/admin/bin/sslmng' '--protocols' 'TLSv1.2'] with exit code [1]
sslmng failed: WARNING:Ignoring unsuppored protocol TLSv1.2
ERROR:No supported protocols supplied

Strange, because it seems that TLSv1.2 is available...

Code: 
# /usr/local/psa/bin/server_pref -s | grep ssl-protocols
ssl-protocols:    TLSv1 TLSv1.1 TLSv1.2

Can anyone help me to get this working?

Thanks in advance!
 
Last edited:
I just solved the problem...

  1. Change manually nginx config to
    Code: 
    ssl_protocols TLSv1.2;
  2. Download (wget) and install (configure, make & make install) curl 7.34 which is compatible with TLSv1.2. Check if version is correct now:
    Code: 
    curl --version
  3. Download (wget) and install (configure, make & make install) openssl 1.0.1 which is compatible with TLSv1.2. Check if version is correct now:
    Code: 
    openssl version
  4. Download (wget) and reinstall (configure, make & make install) php. At the "configure" part, reference the directory where is the just updated curl and openssl through the parameters
    Code: 
    --with-curl=/usr/bin
    and
    Code: 
    --with-openssl-dir=/usr/local/bin
    . Ps: to find the directory where is the openssl and curl installed, just run
    Code: 
    which openssl
    and
    Code: 
    which curl
 
You must log in or register to reply here.

Similar threads

A
Resolved Let's Encrypt certificate with SSL It -> using wrong certificates
Replies
14
Views
2K
lightingman2003
L
S
Issue Let's Encrypt Saving New Certificates under different Name
Replies
2
Views
1K
smpnjn
S
O
Resolved Enabling TLS 1.2 and 1.3 - Not working
Replies
10
Views
6K
learning_curve
learning_curve
M
Forwarded to devs SSL It! / Let's Encrypt - Could not obtain directory: Host must be a string
Replies
3
Views
1K
zanuda
zanuda
Stuart De Usoz
Resolved Lets Encrypt not working
Replies
2
Views
2K
Stuart De Usoz
Stuart De Usoz
Back
Top